CVE-2023-3316 - OpenCVE

A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Libtiff	Libtiff

Configuration 1 [-]

cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*

References

Link	Resource
https://gitlab.com/libtiff/libtiff/-/issues/515	Exploit Patch Third Party Advisory
https://gitlab.com/libtiff/libtiff/-/merge_requests/468	Patch Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html
https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: JFROG

Published: 2023-06-19T11:10:41.964Z

Updated: 2023-06-19T11:10:41.964Z

Reserved: 2023-06-19T10:42:23.466Z

Link: CVE-2023-3316

JSON object: View

NVD Information

Status : Modified

Published: 2023-06-19T12:15:09.520

Modified: 2023-08-01T02:15:10.577

Link: CVE-2023-3316

JSON object: View

Redhat Information

No data.

CWE

CWE-476

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-3316", "assignerOrgId": "48a46f29-ae42-4e1d-90dd-c1676c1e5e6d", "state": "PUBLISHED", "assignerShortName": "JFROG", "dateReserved": "2023-06-19T10:42:23.466Z", "datePublished": "2023-06-19T11:10:41.964Z", "dateUpdated": "2023-06-19T11:10:41.964Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "libtiff", "vendor": "libtiff", "versions": [{"lessThan": "4.5.1", "status": "affected", "version": "3.9.0", "versionType": "git"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.</p>"}], "value": "A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-476", "description": "CWE-476 NULL Pointer Dereference", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "48a46f29-ae42-4e1d-90dd-c1676c1e5e6d", "shortName": "JFROG", "dateUpdated": "2023-06-19T11:10:41.964Z"}, "references": [{"url": "https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/"}, {"url": "https://gitlab.com/libtiff/libtiff/-/issues/515"}, {"url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/468"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"}], "source": {"discovery": "EXTERNAL"}, "title": "A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones."}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "matchCriteriaId": "CC4766C9-CC7C-4BA6-9426-D6AD059AEF4F", "versionEndExcluding": "4.5.1", "versionStartIncluding": "3.9.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.\n\n"}], "id": "CVE-2023-3316", "lastModified": "2023-08-01T02:15:10.577", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "reefs@jfrog.com", "type": "Secondary"}]}, "published": "2023-06-19T12:15:09.520", "references": [{"source": "reefs@jfrog.com", "tags": ["Exploit", "Patch", "Third Party Advisory"], "url": "https://gitlab.com/libtiff/libtiff/-/issues/515"}, {"source": "reefs@jfrog.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/468"}, {"source": "reefs@jfrog.com", "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"}, {"source": "reefs@jfrog.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/"}], "sourceIdentifier": "reefs@jfrog.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-476"}], "source": "reefs@jfrog.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-476"}], "source": "nvd@nist.gov", "type": "Secondary"}]}